Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.mft
File: IbgvyO2I-ZyrV9doAxdusnqfC_o.mft (raw, json)
Hash identifier: UlNuc796xLMhC+MMITBOiSal/6YN3Gc+/fJSAFtkzWI=
Subject key identifier: F1:86:76:90:6A:01:85:8E:9F:78:A4:62:24:5C:B3:42:F1:48:A9:4E
Authority key identifier: 21:B8:2F:C8:ED:88:F9:9C:AB:57:D7:68:03:17:6E:B2:7A:9F:0B:FA
Certificate issuer: /CN=21b82fc8ed88f99cab57d76803176eb27a9f0bfa
Certificate serial: 019A209C504A010F22AD7F3DDC5E0626EE7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IbgvyO2I-ZyrV9doAxdusnqfC_o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.mft
Manifest number: 0E81
Signing time: Sun 26 Oct 2025 13:01:46 +0000
Manifest this update: Sun 26 Oct 2025 13:01:46 +0000
Manifest next update: Mon 27 Oct 2025 13:01:46 +0000
Files and hashes: 1: IbgvyO2I-ZyrV9doAxdusnqfC_o.crl (hash: i0JPr/sOvvhsi/HY4HwFbPZn5h97l2aLoP8L3Jz2cko=)
2: ItUhScrgPwKkKUyhqEMMP6UQG5o.roa (hash: gmpeHaOEVGgSYmwc/n6Xey1Y6I6lJR2qqLtWqmrTzmc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.mft
rsync://rpki.ripe.net/repository/DEFAULT/IbgvyO2I-ZyrV9doAxdusnqfC_o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 13:01:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:20:9c:50:4a:01:0f:22:ad:7f:3d:dc:5e:06:26:ee:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21b82fc8ed88f99cab57d76803176eb27a9f0bfa
Validity
Not Before: Oct 26 13:01:46 2025 GMT
Not After : Oct 27 13:01:46 2025 GMT
Subject: CN=f18676906a01858e9f78a462245cb342f148a94e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:b5:5b:46:4c:56:ab:a5:dc:0b:a3:3a:b5:7d:
51:eb:33:b4:16:ae:e2:e2:e1:3c:93:81:95:5f:ec:
2a:71:35:7f:90:0b:6f:f1:ad:b6:bc:13:fa:b0:27:
ff:b8:6e:b9:8d:88:81:05:fa:0f:63:37:e6:25:97:
fb:63:a5:58:06:24:97:22:b8:c1:9f:66:9e:dc:15:
51:28:e1:36:7b:48:67:65:8b:cb:a0:bd:15:5e:b4:
bd:03:3f:07:b9:02:23:4c:06:6c:ad:5c:c8:c7:c0:
17:d5:00:68:e1:e6:5a:88:de:5d:03:14:d5:fd:31:
86:b1:15:5d:10:b7:34:37:35:3c:05:7f:91:7b:de:
91:05:37:53:4d:1c:95:23:ef:e2:62:8c:95:bd:1c:
f3:fe:ef:88:02:db:73:8a:b0:39:77:0e:f6:02:45:
c7:61:00:f8:14:4a:71:74:56:fe:44:51:a5:ce:ad:
fd:30:6b:89:99:a5:f1:42:cf:8e:25:47:2f:12:b0:
6b:73:3b:a1:65:ed:99:45:66:cd:a1:a1:f1:a9:1f:
6a:db:c8:6b:67:13:6d:fe:a5:2a:fd:9a:de:dc:3a:
82:61:70:c7:89:e0:4a:f1:df:14:97:53:84:00:7d:
ca:e1:11:76:92:ca:2f:42:27:18:61:b2:0f:46:fb:
ba:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:86:76:90:6A:01:85:8E:9F:78:A4:62:24:5C:B3:42:F1:48:A9:4E
X509v3 Authority Key Identifier:
keyid:21:B8:2F:C8:ED:88:F9:9C:AB:57:D7:68:03:17:6E:B2:7A:9F:0B:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IbgvyO2I-ZyrV9doAxdusnqfC_o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:a1:06:d8:09:79:10:35:5d:22:3e:07:da:87:e3:5f:99:25:
02:75:2e:52:61:23:4c:8e:82:c9:46:87:9a:f3:f7:ca:09:a8:
20:bd:e6:37:06:ce:b9:6c:5a:e3:5c:20:67:56:2e:eb:2a:da:
d4:2d:6a:e0:71:83:2e:83:7e:e1:49:c4:0b:b7:ee:4a:9d:80:
a7:a0:a1:d2:11:5e:d0:8c:f0:33:c9:e5:dc:15:2d:0f:be:ec:
5c:80:c6:a3:f7:f3:04:82:6c:41:d8:be:38:62:d8:90:7b:de:
40:08:0c:f3:66:7f:07:df:1f:56:6e:f8:39:c9:61:7d:51:de:
ef:38:4c:8c:4d:96:b1:f5:e9:f1:94:c4:c5:b8:7c:ec:0a:e9:
7b:6a:8f:69:11:d9:08:8b:6e:a0:99:79:60:aa:5d:f9:29:c6:
d5:e0:32:bc:e1:c0:7a:98:63:e6:20:d3:13:64:91:e7:dc:5e:
4d:48:ec:83:da:66:b7:b6:fe:63:db:4c:11:44:32:bb:1e:51:
4f:e6:53:9f:99:63:f5:13:49:35:ef:c9:a1:2c:b2:7c:b8:ef:
a9:f4:0e:c3:13:a3:7e:2f:34:11:4c:8c:ae:10:39:31:79:81:
78:a0:35:84:14:f6:0e:7d:6b:29:d9:02:ae:3e:58:bc:0a:ae:
a1:43:17:51
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZognFBKAQ8irX893F4GJu58MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxYjgyZmM4ZWQ4OGY5OWNhYjU3ZDc2ODAzMTc2ZWIyN2E5
ZjBiZmEwHhcNMjUxMDI2MTMwMTQ2WhcNMjUxMDI3MTMwMTQ2WjAzMTEwLwYDVQQD
EyhmMTg2NzY5MDZhMDE4NThlOWY3OGE0NjIyNDVjYjM0MmYxNDhhOTRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi7VbRkxWq6XcC6M6tX1R6zO0Fq7i
4uE8k4GVX+wqcTV/kAtv8a22vBP6sCf/uG65jYiBBfoPYzfmJZf7Y6VYBiSXIrjB
n2ae3BVRKOE2e0hnZYvLoL0VXrS9Az8HuQIjTAZsrVzIx8AX1QBo4eZaiN5dAxTV
/TGGsRVdELc0NzU8BX+Re96RBTdTTRyVI+/iYoyVvRzz/u+IAttzirA5dw72AkXH
YQD4FEpxdFb+RFGlzq39MGuJmaXxQs+OJUcvErBrczuhZe2ZRWbNoaHxqR9q28hr
ZxNt/qUq/Zre3DqCYXDHieBK8d8Ul1OEAH3K4RF2ksovQicYYbIPRvu6TwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPGGdpBqAYWOn3ikYiRcs0LxSKlOMB8GA1UdIwQY
MBaAFCG4L8jtiPmcq1fXaAMXbrJ6nwv6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSWJndnlPMkktWnlyVjlkb0F4ZHVzbnFmQ19vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS9hYjY1ZjYtMzFiZS00MTQ5LWE2ZTMt
YWU1ZmE1M2I5M2IyLzEvSWJndnlPMkktWnlyVjlkb0F4ZHVzbnFmQ19vLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYS9hYjY1ZjYtMzFiZS00MTQ5LWE2ZTMtYWU1ZmE1M2I5M2Iy
LzEvSWJndnlPMkktWnlyVjlkb0F4ZHVzbnFmQ19vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUKEG2Al5
EDVdIj4H2ofjX5klAnUuUmEjTI6CyUaHmvP3ygmoIL3mNwbOuWxa41wgZ1Yu6yra
1C1q4HGDLoN+4UnEC7fuSp2Ap6Ch0hFe0IzwM8nl3BUtD77sXIDGo/fzBIJsQdi+
OGLYkHveQAgM82Z/B98fVm74OclhfVHe7zhMjE2WsfXp8ZTExbh87Arpe2qPaRHZ
CItuoJl5YKpd+SnG1eAyvOHAephj5iDTE2SR59xeTUjsg9pmt7b+Y9tMEUQyux5R
T+ZTn5lj9RNJNe/JoSyyfLjvqfQOwxOjfi80EUyMrhA5MXmBeKA1hBT2Dn1rKdkC
rj5YvAquoUMXUQ==
-----END CERTIFICATE-----
Generated at Sun Oct 26 22:48:39 2025 by rpki-client